Ksef initSigned, problem z podpisem xades, błąd 3100, 400 bad request

Hej forumowicze, mam problem z generowanie initSigned, mój podpisany dokument wyglada tak jak poniżej, generuje swoj certyfikat przez openssl : openssl req -new -keyout mykey.key -subj "/CN=Jan Kowalski/SN=Kowalski/GN=Jan/O=Testowa firma/C=PL/L=Mazowieckie/serialNumber=NIP-1111111111/description=Jan Kowalski NIP-1111111111" -out mycsr.csr . Mam cały czas bład 3100 Nieprawidłowe wykonanie. Wysyłam na https://ksef-test.mf.gov.pl/api/online/Session/InitSigned dane z nagłówkiem application/octet-stream

<?xml version="1.0" encoding="utf-8"?>
<ns3:InitSessionSignedRequest
	xmlns="http://ksef.mf.gov.pl/schema/gtw/svc/online/types/2021/10/01/0001"
	xmlns:ns2="http://ksef.mf.gov.pl/schema/gtw/svc/types/2021/10/01/0001"
	xmlns:ns3="http://ksef.mf.gov.pl/schema/gtw/svc/online/auth/request/2021/10/01/0001">
	<ns3:Context>
		<Challenge>20240620-CR-AD1C2068A2-EBF58D68F4-04</Challenge>
		<Identifier
			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="ns2:SubjectIdentifierByCompanyType">
			<ns2:Identifier>1111111111</ns2:Identifier>
		</Identifier>
		<DocumentType>
			<ns2:Service>KSeF</ns2:Service>
			<ns2:FormCode>
				<ns2:SystemCode>FA (2)</ns2:SystemCode>
				<ns2:SchemaVersion>1-0E</ns2:SchemaVersion>
				<ns2:TargetNamespace>http://crd.gov.pl/wzor/2021/11/29/11089/</ns2:TargetNamespace>
				<ns2:Value>FA</ns2:Value>
			</ns2:FormCode>
		</DocumentType>
		<Encryption>
			<ns2:EncryptionKey>
				<ns2:Encoding>Base64</ns2:Encoding>
				<ns2:Algorithm>AES</ns2:Algorithm>
				<ns2:Size>256</ns2:Size>
				<ns2:Value>H2+YWam2q/6GJafnC+qbkWDeNvZb8brpUkXw5cstNP5GnK+DGyIIwgCS7kXJXa2X8BOh9OWJXry5l7wZMq+WCXCif1+pQ+5+FbJlm16A3PB5BNy2S6cBubS2Q+kdk5FJs7pFMt6U+6jEPKMrmxi0D3nFyYK6cKmVZFQHa/4faj7qa70KEpyL49WJxdHGbQfAoe05z5OKyiZZftz+oGJVystA+fCLufVhiZ7gIuZLov8aamO1ghum1vYsG7nqJ1OrmUVrpgqv5jCqdMo+4FqG9XMKntgGsmydskjPiSxj1mF4+qNAP6neINrDrG+M1lCg/VBhrdnTAGnyfsODfohbiw==</ns2:Value>
			</ns2:EncryptionKey>
			<ns2:EncryptionInitializationVector>
				<ns2:Encoding>Base64</ns2:Encoding>
				<ns2:Bytes>16</ns2:Bytes>
				<ns2:Value>5+DjwCfRIQPaX1Rj3jMAWw==</ns2:Value>
			</ns2:EncryptionInitializationVector>
			<ns2:EncryptionAlgorithmKey>
				<ns2:Algorithm>RSA</ns2:Algorithm>
				<ns2:Mode>ECB</ns2:Mode>
				<ns2:Padding>PKCS#1</ns2:Padding>
			</ns2:EncryptionAlgorithmKey>
			<ns2:EncryptionAlgorithmData>
				<ns2:Algorithm>AES</ns2:Algorithm>
				<ns2:Mode>CBC</ns2:Mode>
				<ns2:Padding>PKCS#7</ns2:Padding>
			</ns2:EncryptionAlgorithmData>
		</Encryption>
		<Type>SerialNumber</Type>
	</ns3:Context>
	<Signature Id="Signature"
		xmlns="http://www.w3.org/2000/09/xmldsig#">
		<SignedInfo>
			<CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
			<SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" />
			<Reference Id="mainRefId" URI="">
				<Transforms>
					<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
				</Transforms>
				<DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
				<DigestValue>stkALTT4XHoP7/sbEj2Aue4yqVH3gRRcpMFkPeHfZF8=</DigestValue>
			</Reference>
			<Reference URI="#ObjectRef1" Type="http://uri.etsi.org/01903#SignedProperties">
				<DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
				<DigestValue>tUBvTUVSEbH35Db71OX95i27UpSjAaOIy2s1o+NV8mM=</DigestValue>
			</Reference>
		</SignedInfo>
		<SignatureValue>N9adJrDZ6q10F6ssKmVipM9HhSII9/+olTNGP5HhpEika7YP1V67KDVNDVJwAiIpUBZHIgKXz1ExpHT6YusACviqhSIVgW4tWv8WWbtWAKfYhrKZv6eJEdC7SEGq8Bm8kajxP1dJb3lAZo98A5uph6kAIAnt2UKSZrQjIOuKSeIkE638rjWoiJTdUm+SlDNZltbhDG2swMfXfr2d7FyFtxCheLfoOKHn6zj3bifBgFLZZo7NuEqgR4zFRBUNEAZ3ZUVUsbk9KPXL57O0jiCnJ212BNNy6bTDdW8vWGRZ8bjcHJMUxEpWSsTi679YiLEmSp0SCC1LBpCGoOoXCYiUng==</SignatureValue>
		<KeyInfo>
			<X509Data>
				<X509Certificate>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</X509Certificate>
			</X509Data>
		</KeyInfo>
		<Object Id="ObjectRef1">
			<xades:QualifyingProperties Target="#Signature"
				xmlns:xades="http://uri.etsi.org/01903/v1.3.2#">
				<xades:SignedProperties Id="SignedProperties2">
					<xades:SignedSignatureProperties>
						<xades:SigningTime>2024-06-20T13:06:31Z</xades:SigningTime>
						<xades:SigningCertificate>
							<xades:Cert>
								<xades:CertDigest>
									<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
									<DigestValue>PhknAuslxd07JuM8fx4lyLOszdQ=</DigestValue>
								</xades:CertDigest>
								<xades:IssuerSerial>
									<X509IssuerName>Description=Jan Kowalski NIP-1111111111, SERIALNUMBER=NIP-1111111111, L=Mazowieckie, C=PL, O=Testowa firma, G=Jan, SN=Kowalski, CN=Jan Kowalski</X509IssuerName>
									<X509SerialNumber>56024554097134433162645597253368016771961288474</X509SerialNumber>
								</xades:IssuerSerial>
							</xades:Cert>
						</xades:SigningCertificate>
					</xades:SignedSignatureProperties>
					<xades:SignedDataObjectProperties>
						<xades:DataObjectFormat ObjectReference="#mainRefId">
							<xades:MimeType>text/xml</xades:MimeType>
						</xades:DataObjectFormat>
					</xades:SignedDataObjectProperties>
				</xades:SignedProperties>
			</xades:QualifyingProperties>
		</Object>
	</Signature>
</ns3:InitSessionSignedRequest>

Ksef initSigned, problem z podpisem xades, błąd 3100, 400 bad request

1 użytkowników online, w tym zalogowanych: 0, gości: 1

Praca dla programistów

Forum dyskusyjne

Sprawy administracyjne

O nas

Skontaktuj się z nami